Route Origin Authorization
$ rpki-client -vvf rpki.co/repo/AS203843/0/326131323a646434373a383034373a3a2f34382d3438203d3e20323033383433.roa
File: 326131323a646434373a383034373a3a2f34382d3438203d3e20323033383433.roa (raw, json)
Hash identifier: ZIqI3FI+tNz0mJv/3X3x6XQkvPBDu6nQbvuZE2iia5A=
Subject key identifier: 66:D4:3E:9D:4A:1B:F0:B0:93:33:07:0A:8A:4F:A4:F9:55:09:A9:E3
Certificate issuer: /CN=CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE
Certificate serial: 1B77EBFB3C923DFB6CDF41B8CEB2AC6B05A6CFB6
Authority key identifier: CD:67:25:68:ED:AF:D0:43:AC:C9:C2:B6:93:C6:F2:BF:9D:F6:42:FE
Authority info access: rsync://rpki.co/repo/AS945/1/CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE.cer
Subject info access: rsync://rpki.co/repo/AS203843/0/326131323a646434373a383034373a3a2f34382d3438203d3e20323033383433.roa
Signing time: Wed 19 Apr 2023 12:32:16 +0000
ROA not before: Wed 19 Apr 2023 12:27:16 +0000
ROA not after: Wed 17 Apr 2024 12:32:16 +0000
asID: 203843
IP address blocks: 2a12:dd47:8047::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:77:eb:fb:3c:92:3d:fb:6c:df:41:b8:ce:b2:ac:6b:05:a6:cf:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE
Validity
Not Before: Apr 19 12:27:16 2023 GMT
Not After : Apr 17 12:32:16 2024 GMT
Subject: CN=66D43E9D4A1BF0B09333070A8A4FA4F95509A9E3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:82:d9:40:ec:a1:1c:10:97:8a:04:50:46:39:
36:de:9f:5f:9f:d0:eb:36:2d:d8:2c:61:1c:98:3c:
c5:e6:8b:03:32:1d:59:2f:ef:3f:d2:b1:8d:58:e0:
5d:ed:ab:a8:bf:6c:df:da:23:a0:58:5b:89:53:00:
97:ab:d5:b9:29:85:75:6d:d2:70:ac:5a:9f:7c:76:
32:99:12:45:cc:b5:92:44:76:d4:90:e9:c2:b5:4a:
c2:f3:96:29:c1:56:a4:a3:df:ff:68:88:e9:35:b8:
08:7e:87:31:13:46:f3:f6:99:b2:a9:29:9f:32:da:
4f:59:2a:93:d3:2a:e7:b9:6a:78:8c:27:8f:cd:e5:
dd:4e:30:73:6c:09:95:45:de:c7:fc:e3:84:a6:0a:
2c:ca:60:38:6d:74:16:2c:a6:ef:ea:f8:5e:74:31:
20:7d:af:5c:45:5a:0f:dc:ef:80:43:64:6e:25:3a:
51:18:8f:39:6a:51:43:c2:50:83:08:04:03:df:af:
d2:0c:16:a4:e0:04:cd:3d:53:f2:76:0a:93:51:67:
18:e4:1e:1c:c3:c6:fb:18:df:3e:f3:75:24:5f:c5:
19:f7:c4:d8:e1:c2:85:3c:d1:50:63:89:7b:5f:de:
7d:2f:e3:f0:48:51:7e:be:23:f0:15:95:64:41:1e:
bf:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:D4:3E:9D:4A:1B:F0:B0:93:33:07:0A:8A:4F:A4:F9:55:09:A9:E3
X509v3 Authority Key Identifier:
keyid:CD:67:25:68:ED:AF:D0:43:AC:C9:C2:B6:93:C6:F2:BF:9D:F6:42:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.co/repo/AS203843/0/CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.co/repo/AS945/1/CD672568EDAFD043ACC9C2B693C6F2BF9DF642FE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.co/repo/AS203843/0/326131323a646434373a383034373a3a2f34382d3438203d3e20323033383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a12:dd47:8047::/48
Signature Algorithm: sha256WithRSAEncryption
99:4a:cb:8d:16:4a:d9:5d:c4:87:2c:64:eb:58:59:52:e6:f3:
da:f2:7a:33:cf:09:8f:fd:b5:9c:45:b7:c3:cd:1e:00:c8:a5:
3e:d3:21:b0:c9:59:2e:4e:3d:63:70:ff:7b:39:1d:b8:22:6a:
d3:81:de:24:ba:24:c4:45:ca:27:da:aa:30:78:68:d0:37:10:
fb:a3:56:e7:ed:9d:d3:16:ec:95:07:d3:71:ae:69:51:0a:e8:
bd:01:c0:cf:bb:83:3e:bc:0f:1c:6c:90:4f:3d:26:12:c4:39:
c1:8d:ab:8b:8b:50:3d:54:4a:3c:97:81:f7:91:3f:00:48:a0:
43:39:da:05:ca:56:68:f7:21:7e:74:e0:10:24:83:7e:56:55:
9c:8c:93:24:99:c2:6d:da:ba:56:1a:c3:52:6b:6f:36:5c:4e:
18:e2:1d:dd:fb:d6:dc:7b:04:98:5a:8d:e4:c5:28:a9:a2:ee:
1c:91:dc:38:a2:29:65:36:c7:6d:dc:29:6c:3d:6b:e8:7e:f1:
c8:a2:38:40:95:a8:88:c9:99:c3:3f:d4:89:36:3d:40:74:ba:
60:38:69:1b:95:a3:38:16:ed:99:fe:f2:15:25:bf:4e:07:bf:
ad:45:31:cc:87:62:c3:b7:20:10:2f:39:27:71:4e:62:a4:11:
ea:19:00:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 27 19:13:03 2025 by rpki-client